Additional info
All session data is stored server-side, with only a cookie on the client-side telling the server what session-id it should work with. If the client browser has high security and you are afraid that cookies might not be available, then you can add the constant SID to every hyperlink necessary in order to pass the session-id around. This constant will not have any value unless the cookie creation fails. An alternative way is to define your own POST/GET variable(s) and pass the session_id() and/or session_name().

A simple SID usage example

<a href="index.php?<?=SID?>">A link during a session that needs to have the session-id on the next page.</a>

If SID has a value, it would contain both the session name and the session-id value. E.g. PHPSESSID=somevalue.